When I rebooted the server recently to patch some linux kernel vulnerabilities it messed up Prosody and was unable to read the certificate files because of a bash script I made to copy over the Let’s Encrypt certificates in a cronjob. I did chmod 600 instead of 700 in the script so it made the files unreadable to Prosody. WOW was that a dumb mistake… Sorry about that! Good thing it was only about 20 minutes of downtime. Took me a while to figure it out while I was tired. (Note to self, don’t reboot server when tired).

Here is the script if you were curious.

We made the switch to a new dedicated server last night (find more info on the about page) and have also made the switch to using Let’s Encrypt certificates. Sorry for any disruption in service this has caused, everything should be running smoothly now.

DNSSEC is currently disabled for a while until I figure out why ISNIC can’t reach my master nameserver (ganymede.ns.lunar.systems). Sorry about that 🙁

There has been a concerning vulnerability found in libotr. You should upgrade that package immediately. More details at otr.cypherpunks.ca/news.php.

Yes, that’s right… Due to me not being able to afford the excellent dedicated server that XMPP.is ran off of in the past I’ve had to make the switch to a cheaper and much more efficient scaleway.com ARM server. Since I did not utilize most the dedicated server’s resources I believe Prosody will run just fine on it. For the price this thing is well worth it.

Can we call XMPP.is “green” since we use an efficient ARM server 😀 ? I know there might be some concerns about privacy in France especially about all the controversy with anti-privacy laws being proposed/passed. I don’t think there is much of a risk, since no logs are being stored and the passwords are hashed. The most someone could get out of the server is who your buddies are. If you connect with Tor it makes it all-the-more confusing for people who wish to find your location. If something more serious like the server being setup as a honeypot I’m pretty sure I’d know about it. I am confident in my security practice.

Besides that, everything has been completely migrated to the new server and it should be functioning as it always has. If you have any questions or problems you can always contact me.

Enjoy!